New Ransomware Group Exploiting Veeam Backup Software Vulnerability

The recently discovered ransomware group known as EstateRansomware is taking use of a security hole in the Veeam Backup & Replication software that has been patched.

The basic operandi of the threat actor, according to Group-IB, based in Singapore, which identified them in early April 2024, involved exploiting CVE-2023-27532 (CVSS score: 7.5) to carry out the harmful actions.

It is claimed that an inactive account on a Fortinet FortiGate firewall SSL VPN appliance allowed for initial access to the target environment.

According to a study released today by security researcher Yeo Zi Wei, the threat actor used the SSL VPN service to pivot laterally from the FortiGate Firewall and get access to the failover server read more about New Ransomware Group Exploiting Veeam Backup Software Vulnerability.

Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *